[NTLUG:Discuss] Hook SSHD into sendmail milter?
Neil Aggarwal
neil at JAMMConsulting.com
Wed Jul 13 15:57:31 CDT 2005
Greg:
The problem is that I change the IPs listed in my milter
quite often and then I have to change my firewall rules
each time.
It is duplicate effort to keep the list in both places.
Thanks,
Neil
--
Neil Aggarwal, JAMM Consulting, (214) 986-3533, www.JAMMConsulting.com
FREE! Valuable info on how your business can reduce operating costs by
17% or more in 6 months or less! http://newsletter.JAMMConsulting.com
> -----Original Message-----
> From: discuss-bounces at ntlug.org
> [mailto:discuss-bounces at ntlug.org] On Behalf Of Greg Edwards
> Sent: Tuesday, July 12, 2005 9:47 PM
> To: NTLUG Discussion List
> Subject: Re: [NTLUG:Discuss] Hook SSHD into sendmail milter?
>
>
> Neil Aggarwal wrote:
> >
> > Is there a way to configure sshd to call a program to check whether
> > an IP is allowed or not?
> >
> > I see that hosts_access in section 3 of the man pages has
> > this function:
> >
> > int hosts_ctl(daemon, client_name, client_addr, client_user)
> > char *daemon;
> > char *client_name;
> > char *client_addr;
> > char *client_user;
> >
> > Is there a way to get sshd to call a program I write that implements
> > this method?
> >
> > Thanks,
> > Neil
> >
>
> Wouldn't it be easier to do through your firewall? Or are these IPs
> inside? Using an iptables rule to reject those addresses
> should get the
> trick done, if you're interested in that option.
>
> I've got the SSH book on the shelf, but haven't read it yet
> so I couldn't
> help with that.
>
> --
> Greg Edwards
> New Age Software, Inc.
> Custom software for an off the rack world
> http://consult.nas-inet.com
>
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list